Sean De Regge

**Nome do software vulnerável e versões afetadas** Luxion KeyShot (versões afetadas não especificadas) **Descrição** Esta vulnerabilidade permite que invasores remotos executem código arbitrário em instalações afetadas do Luxion KeyShot. É necessária a interação do usuário para explorar essa vulnerabilidade, sendo que o alvo deve visitar uma página maliciosa ou abrir um arquivo malicioso. A falha está presente na análise de arquivos BIP, resultante do carregamento de uma biblioteca de um local não seguro, permitindo que um invasor execute código no contexto do processo atual. **Recomendações** No momento, não há informações sobre uma versão mais recente que contenha uma correção para essa vulnerabilidade.

**Nome do software vulnerável e versões afetadas** Versões anteriores à 4.0.0.82 do CNCSoft-B DOPSoft da Delta Electronics **Descrição** O problema está relacionado ao carregamento inseguro de bibliotecas, o que pode permitir que um invasor utilize o sequestro de DLLs e assuma o controle do sistema onde o software está instalado. Isso se deve a um elemento de caminho de pesquisa não controlado. A exploração da vulnerabilidade pode permitir que um invasor execute código arbitrário. **Recomendações** Para versões anteriores à 4.0.0.82, atualize para a versão 4.0.0.82 ou posterior para resolver o problema. Como solução temporária, considere restringir o acesso ao sistema onde o software está instalado para minimizar o risco de exploração. Evite usar o software até que o problema seja resolvido.

**Name of the Vulnerable Software and Affected Versions** Ashlar-Vellum Xenon (affected versions not specified) **Description** This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a malicious file. The flaw exists within the parsing of various file types, where a library is loaded from an unsecured location, allowing an attacker to execute code in the context of the current process. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Ashlar-Vellum Argon (affected versions not specified) **Description** This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a malicious file. The flaw exists within the parsing of various file types, where a library is loaded from an unsecured location, allowing an attacker to execute code in the context of the current process. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Ashlar-Vellum Lithium (affected versions not specified) **Description** The issue is related to an uncontrolled search path element in the software, which can be exploited to execute arbitrary code. This can be achieved by loading a library from an unsecured location, allowing an attacker to execute code in the context of the current process. The exploitation requires user interaction, such as visiting a malicious page or opening a malicious file. The specific flaw exists within the parsing of various file types. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Ashlar-Vellum Cobalt (affected versions not specified) **Description** This issue allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this issue, where the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of various file types, where the process loads a library from an unsecured location. An attacker can leverage this issue to execute code in the context of the current process. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** RealPlayer versions 11.0 through 11.1 RealPlayer versions 14.0.0 through 14.0.5 RealPlayer SP versions 1.0 through 1.1.5 RealPlayer Enterprise versions 2.0 through 2.1.5 **Description** The issue allows remote attackers to execute arbitrary code via crafted ID3v2 tags in an MP3 file. This is a result of a heap-based buffer overflow. **Recommendations** For RealPlayer versions 11.0 through 11.1, update to a version outside of this range to resolve the issue. For RealPlayer versions 14.0.0 through 14.0.5, update to a version outside of this range to resolve the issue. For RealPlayer SP versions 1.0 through 1.1.5, update to a version outside of this range to resolve the issue. For RealPlayer Enterprise versions 2.0 through 2.1.5, update to a version outside of this range to resolve the issue. As a temporary workaround, consider avoiding the use of crafted ID3v2 tags in MP3 files until a patch is available.

**Name of the Vulnerable Software and Affected Versions** RealPlayer versions 11.0 through 11.1 RealPlayer versions 14.0.0 through 14.0.5 RealPlayer SP versions 1.0 through 1.1.5 **Description** The issue is related to a heap-based buffer overflow in the qcpfformat.dll component. This allows remote attackers to execute arbitrary code via a crafted QCP file. **Recommendations** For RealPlayer versions 11.0 through 11.1, update to a version outside of this range to resolve the issue. For RealPlayer versions 14.0.0 through 14.0.5, update to a version outside of this range to resolve the issue. For RealPlayer SP versions 1.0 through 1.1.5, update to a version outside of this range to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** RealPlayer versions 11.0 through 11.1 RealPlayer SP versions 1.0 through 1.1 **Description** The issue allows remote attackers to download and execute an arbitrary program onto a client machine by injecting parameters to the `RecordClip` method, specifically by using a double quote in an argument. **Recommendations** For RealPlayer versions 11.0 through 11.1, consider disabling the `RecordClip` method until a patch is available. For RealPlayer SP versions 1.0 through 1.1, restrict access to the `RecordClip` method to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Apple iTunes version 4.7 **Description** A buffer overflow issue allows remote attackers to execute arbitrary code via a long URL in `.m3u` or `.pls` playlist files. **Recommendations** For Apple iTunes version 4.7, update to a newer version to mitigate the risk of arbitrary code execution.